Better warning message when the digest in sudoers is the wrong length.
This commit is contained in:
@@ -106,10 +106,12 @@ digest_matches(int fd, const char *path, const char *runchroot,
|
||||
/* Convert base64 to binary. */
|
||||
size_t len = base64_decode(digest->digest_str, sudoers_digest, digest_len);
|
||||
if (len != digest_len) {
|
||||
sudo_debug_printf(SUDO_DEBUG_ERROR|SUDO_DEBUG_LINENO,
|
||||
"incorrect length for digest, expected %zu, got %zu",
|
||||
digest_len, len);
|
||||
goto bad_format;
|
||||
if (len == (size_t)-1)
|
||||
goto bad_format;
|
||||
sudo_warnx(
|
||||
U_("digest for %s (%s) bad length %zu, expected %zu"),
|
||||
path, digest->digest_str, len, digest_len);
|
||||
goto done;
|
||||
}
|
||||
}
|
||||
if (memcmp(file_digest, sudoers_digest, digest_len) == 0) {
|
||||
|
Reference in New Issue
Block a user